Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/WwDEOaUdmB6_zK1ocQ4roUvPWsw.roa
File: WwDEOaUdmB6_zK1ocQ4roUvPWsw.roa (raw, json)
Hash identifier: lNY2yP7uojVAYKw6V/sO+cF4CzGinzRngMEREMeGMlM=
Subject key identifier: 5B:00:C4:39:A5:1D:98:1E:BF:CC:AD:68:71:0E:2B:A1:4B:CF:5A:CC
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E5F
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WwDEOaUdmB6_zK1ocQ4roUvPWsw.roa
Signing time: Mon 10 Feb 2025 14:03:27 +0000
ROA not before: Mon 10 Feb 2025 14:03:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 27.147.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3679 (0xe5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5B00C439A51D981EBFCCAD68710E2BA14BCF5ACC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:24:30:cb:46:58:b8:97:27:5f:7a:73:f0:99:
54:bd:08:05:d0:6a:54:6a:15:e6:08:0b:24:71:9c:
24:c9:eb:78:1d:be:26:98:df:b2:58:9d:e1:44:f1:
ee:95:e2:14:31:ea:ee:41:29:a3:97:8e:f3:41:9b:
b8:80:f5:df:d1:92:66:67:39:ff:33:12:73:84:70:
0c:5e:94:23:3a:30:79:4c:86:e5:52:9e:a6:b4:16:
fb:d5:1f:e8:70:21:13:a0:71:65:d0:77:cd:9b:17:
40:e1:dc:1e:0d:c9:1a:10:23:21:a7:29:c8:3f:f9:
b5:8f:f5:72:4b:3f:96:e4:a5:17:f5:93:20:34:7e:
ab:43:ec:09:28:29:f6:3c:83:00:a4:86:7a:98:98:
32:80:e2:e9:a7:81:7b:e4:2a:aa:4a:9d:5f:9b:2b:
0f:3b:13:c7:b1:b4:a7:11:c7:f2:16:14:98:d6:25:
c0:55:46:8b:4c:bc:2e:af:77:e4:f4:91:03:5d:e6:
0c:86:16:15:7d:eb:4b:1c:52:33:0a:1f:9f:fd:76:
bc:50:44:90:b3:c0:3e:b3:56:d7:3b:23:9f:7b:af:
53:4d:2f:23:0e:96:56:45:88:f7:e9:21:ca:e5:cb:
72:1d:32:61:26:94:bd:c6:6d:90:57:50:a2:90:25:
c4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:00:C4:39:A5:1D:98:1E:BF:CC:AD:68:71:0E:2B:A1:4B:CF:5A:CC
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WwDEOaUdmB6_zK1ocQ4roUvPWsw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.56.0/21
Signature Algorithm: sha256WithRSAEncryption
14:e2:1a:af:f6:a8:8e:40:44:d2:fa:bc:a1:fa:6d:95:6a:72:
69:78:d9:6d:bc:7f:10:09:89:7c:65:8d:b4:49:4e:80:72:d8:
a3:e3:59:59:81:03:7a:6a:30:bd:f6:dd:8e:68:2f:af:68:e5:
96:5b:a2:41:54:79:7b:fd:fa:5a:56:41:11:bc:28:70:68:d2:
bf:36:40:43:70:f4:15:55:2c:3b:62:8a:34:f5:14:b3:a1:30:
4e:bb:83:49:bf:50:62:5d:c0:bb:1f:34:97:38:b4:01:ae:0d:
b5:1c:1a:6b:d0:92:91:2d:70:9b:fa:46:66:c3:0d:40:a4:c5:
84:fe:7d:b7:3f:5b:df:6b:37:61:05:e9:21:31:58:38:49:3f:
92:27:eb:3b:9d:ce:47:44:68:61:b9:39:45:f6:55:ea:1c:97:
ae:82:3e:84:1f:d7:79:ca:77:a1:43:e5:13:c9:19:44:4e:7e:
b2:d8:36:95:1c:73:b3:64:1d:46:72:c6:9f:c5:03:d8:3b:6c:
1a:37:61:43:5f:7b:42:b0:c0:63:74:7f:c0:6c:8a:12:61:80:
7b:62:75:ce:e2:0e:2e:c3:d9:da:0d:71:02:b5:a3:58:38:14:
44:f1:95:a6:2e:a1:ed:d0:56:85:c0:83:04:01:2a:84:41:ee:
dc:14:a5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:12 2025 by rpki-client